Two-factor authentication (2FA)

Two-factor authentication (also known as 2FA) adds an additional layer of authentication when you log into your StartMail account. Two-factor authentication secures your account by requiring something you know (your StartMail password) with something you have (a code generated by an app on your phone/device). In order to set up 2FA for your StartMail account, you will need an authenticator app on your mobile device that supports the Time-based One-Time Password (TOTP) algorithm.

• Configure 2FA
• Deactivate 2FA (with authenticator app)
• Deactivate 2FA (without authenticator app)

Configure 2FA

1. Navigate to the login screen and enter your username and password as usual.
   
   
2. In your StartMail inbox, click on Settings
   
   
   
   
3. Under Two-factor authentication, click on Enable
   
   
   
   
4. Enter your password and click on Enable
   
   
   
   
5. Scan the QR-code using an authenticator app of your choice, enter the authentication code returned by the app, and click on Activate. If you're using a mobile device, the secret key will be shown instead that you can copy and paste in an authenticator app.
   
   
   
   
6. IMPORTANT: You will now be shown your 2FA backup code. Make sure to store this 2FA backup code safely, as it is needed in case you lose access to the authentication code from your authenticator app. If you lose access to both your authentication code and your 2FA backup code, you will not be able to access your StartMail account!

Please note: Reinstalling your authenticator app might reset the settings. This way you can lose access to your authentication code.

Deactivate 2FA (with authenticator app)

Alternatively, if you still have the 2FA token you can disable it from the Settings menu.

1. In your StartMail inbox, click on Settings
   
   
   
   
2. Under Two-factor authentication, click on Disable
   
   
   
   
3. Enter your password and click on Disable
   
   
   
   
4. A message confirming that it has been disabled will appear at the bottom of your screen.
   
   
   
   

Deactivate 2FA (without authenticator app)

If you've lost access to your 2FA token or code, you need to use the backup code. This was called deactivation code in the past.

1. Navigate to the login screen and enter your username and password as usual and log in.
   
   
   
   
2. Instead of typing in your 2FA code, enter your 2FA backup code, which will deactivate 2FA from your StartMail account.
   
   
3. Two-factor authentication has now been disabled for your account.